← back
CVE-2021-32004

GateManager does not enforce strict hostname matching for WEB server

CVSS 3.7 LOWEPSS 0.6%CWE-923
This issue affects: Secomea GateManager All versions prior to 9.6. Improper Check of host header in web server of Secomea GateManager allows attacker to cause browser cache poisoning.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected products
Secomea · GateManager

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.secomea.com/support/cybersecurity-advisory/#4578